$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft File: 2MHMikY6MVDL7AhlTmF4ANZuU-k.mft (raw, json) Hash identifier: sDT6Jol60mbCbizNB1tSgPACCGLp9UAcRBgiP+BzTW8= Subject key identifier: 8E:A4:34:A6:AA:F2:F0:9B:77:FF:EB:97:6D:6B:60:09:B1:5E:59:8E Authority key identifier: D8:C1:CC:8A:46:3A:31:50:CB:EC:08:65:4E:61:78:00:D6:6E:53:E9 Certificate issuer: /CN=A91F89C1/serialNumber=D8C1CC8A463A3150CBEC08654E617800D66E53E9 Certificate serial: 06CC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2MHMikY6MVDL7AhlTmF4ANZuU-k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft Manifest number: 06BE Signing time: Tue 04 Nov 2025 22:15:54 +0000 Manifest this update: Tue 04 Nov 2025 22:15:53 +0000 Manifest next update: Tue 11 Nov 2025 22:15:53 +0000 Files and hashes: 1: 2MHMikY6MVDL7AhlTmF4ANZuU-k.crl (hash: TSNj+HtkFQJpvtKXZIpfOSEewdFUFkH85JlmGNI0Y+o=) 2: F00A66308A9C11EB9B2E044BC4F9AE02.roa (hash: HTPqOWIyJHqMlIZAMr3y8PX5c90zicN8031Dpgoj/xo=) 3: 88A31320809211EB938F4016C4F9AE02.roa (hash: +ggMU5apLM7/E36BO1O5K0i1T6Q0H2I5abkvXaYTrxI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.crl rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2MHMikY6MVDL7AhlTmF4ANZuU-k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:15:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1740 (0x6cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89C1, serialNumber=D8C1CC8A463A3150CBEC08654E617800D66E53E9 Validity Not Before: Nov 4 22:15:53 2025 GMT Not After : Nov 11 22:15:53 2025 GMT Subject: CN=690a7b1a-bc6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:fb:55:5c:45:94:26:3f:7d:b7:c8:3c:df:36: f8:2b:51:91:af:17:db:f6:16:ce:05:7e:8f:78:51: 9c:80:99:a8:f5:d4:ce:7f:fd:92:f2:e1:96:22:11: 37:a7:06:51:f8:b9:d5:80:0d:12:58:07:04:fe:2e: 75:b0:b8:8b:fc:01:90:09:6f:b6:a6:3e:fd:56:02: 22:2c:d1:18:66:fc:32:e4:d1:6d:cf:e9:7d:15:dd: 2a:a3:f2:88:d3:42:ea:4b:f3:fe:7e:b4:f5:94:a8: 02:b0:e9:fb:b8:40:69:2e:06:14:b1:eb:23:dc:bc: c1:e7:d0:3e:a0:be:1c:ec:66:0a:94:be:6c:ec:1f: 99:0b:7d:ad:f1:d4:23:f8:39:36:3a:0e:00:e0:7a: 79:e7:e4:29:40:75:69:e5:71:d8:df:86:4a:8e:2a: bd:0e:cb:3f:8d:67:f4:07:44:51:50:1e:1c:11:74: c4:70:fd:d4:be:6f:a3:8f:93:d7:b4:cd:6e:97:5a: f0:3c:52:9d:4a:49:f0:3c:71:04:c6:25:07:38:96: be:f7:b9:55:de:30:f4:19:4f:ba:56:c7:55:8e:1f: 7a:e6:1d:06:de:d8:e9:2b:af:a9:60:94:26:8b:d7: b0:76:f2:b8:70:7d:58:81:5b:22:a6:3f:46:d7:b6: cd:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:A4:34:A6:AA:F2:F0:9B:77:FF:EB:97:6D:6B:60:09:B1:5E:59:8E X509v3 Authority Key Identifier: keyid:D8:C1:CC:8A:46:3A:31:50:CB:EC:08:65:4E:61:78:00:D6:6E:53:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2MHMikY6MVDL7AhlTmF4ANZuU-k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:3a:ab:ba:6a:e1:b8:2a:8a:77:6c:e5:1c:31:5c:46:36:a8: 43:f8:b4:ce:ba:f5:9b:c9:df:3a:07:62:ab:35:9b:0a:8f:67: 00:1e:12:07:8a:0c:a7:f5:17:15:ff:7b:01:57:85:21:21:b0: 26:c8:46:ae:24:c0:47:36:d9:02:51:6c:a7:ea:19:c6:92:7e: a7:3c:e3:a1:5d:4c:89:0b:31:c2:58:dd:18:f8:87:49:57:b8: 8a:f2:42:6c:eb:a2:90:44:47:41:53:58:41:e9:43:16:39:8a: 80:e4:30:a2:c6:40:89:8e:5b:84:c1:b5:db:65:50:d1:74:82: 43:c2:b3:45:1c:e4:fe:58:2d:64:d4:6c:76:0d:9c:a8:e1:ab: 1e:03:32:00:ba:af:16:b3:64:ca:61:22:5a:c0:bf:42:8f:7d: b7:30:c4:c0:46:15:39:6e:7a:22:47:a7:c8:de:6f:66:2d:9b: 68:ae:39:3b:99:1c:a4:c6:cb:eb:25:9e:07:bf:42:2d:66:22: 79:d2:c9:15:0b:70:0f:cd:0d:d2:0d:b5:9e:bf:f7:e5:22:bf: ad:2c:9f:ca:53:4f:75:f9:f1:cf:81:c6:1b:e8:0a:8d:94:bd: 0c:e7:8a:e9:39:3f:18:88:c9:e2:07:02:e5:12:9a:c2:51:b0: 62:e2:39:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBswwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5QzExMTAvBgNVBAUTKEQ4QzFDQzhBNDYzQTMxNTBDQkVDMDg2NTRFNjE3ODAw RDY2RTUzRTkwHhcNMjUxMTA0MjIxNTUzWhcNMjUxMTExMjIxNTUzWjAYMRYwFAYD VQQDEw02OTBhN2IxYS1iYzZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ftVXEWUJj99t8g83zb4K1GRrxfb9hbOBX6PeFGcgJmo9dTOf/2S8uGWIhE3 pwZR+LnVgA0SWAcE/i51sLiL/AGQCW+2pj79VgIiLNEYZvwy5NFtz+l9Fd0qo/KI 00LqS/P+frT1lKgCsOn7uEBpLgYUsesj3LzB59A+oL4c7GYKlL5s7B+ZC32t8dQj +Dk2Og4A4Hp55+QpQHVp5XHY34ZKjiq9Dss/jWf0B0RRUB4cEXTEcP3Uvm+jj5PX tM1ul1rwPFKdSknwPHEExiUHOJa+97lV3jD0GU+6VsdVjh965h0G3tjpK6+pYJQm i9ewdvK4cH1YgVsipj9G17bNdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI6kNKaq 8vCbd//rl21rYAmxXlmOMB8GA1UdIwQYMBaAFNjBzIpGOjFQy+wIZU5heADWblPp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlDMS8wQTNGMjY5Qzgw ODYxMUVCQjRDNkQxMTZDNEY5QUUwMi8yTUhNaWtZNk1WREw3QWhsVG1GNEFOWnVV LWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJNSE1pa1k2TVZETDdBaGxUbUY0QU5adVUtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlDMS8wQTNGMjY5QzgwODYxMUVCQjRDNkQxMTZDNEY5QUUwMi8yTUhNaWtZNk1W REw3QWhsVG1GNEFOWnVVLWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADOqu6auG4Kop3bOUcMVxGNqhD+LTOuvWbyd86B2KrNZsKj2cAHhIH igyn9RcV/3sBV4UhIbAmyEauJMBHNtkCUWyn6hnGkn6nPOOhXUyJCzHCWN0Y+IdJ V7iK8kJs66KQREdBU1hB6UMWOYqA5DCixkCJjluEwbXbZVDRdIJDwrNFHOT+WC1k 1Gx2DZyo4aseAzIAuq8Ws2TKYSJawL9Cj323MMTARhU5bnoiR6fI3m9mLZtorjk7 mRykxsvrJZ4Hv0ItZiJ50skVC3APzQ3SDbWev/flIr+tLJ/KU091+fHPgcYb6AqN lL0M54rpOT8YiMniBwLlEprCUbBi4jmW -----END CERTIFICATE-----Generated at Wed Nov 5 13:36:29 2025 by rpki-client